$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/98121BB470E711EFBEAD2871C4F9AE02.roa File: 98121BB470E711EFBEAD2871C4F9AE02.roa (raw, json) Hash identifier: 7IZmCxBJU0VEm6Y2lsHjWK2wmw7RYwuHDBIvzUGBoxw= Subject key identifier: B9:16:E5:4D:60:8D:93:B9:5B:58:36:B6:E0:CD:74:1E:8D:92:5F:EE Certificate issuer: /CN=A912DFFA/serialNumber=F9F7E9B4CC31F395C5CDB8FAC9F52FCA57524DE1 Certificate serial: 021B Authority key identifier: F9:F7:E9:B4:CC:31:F3:95:C5:CD:B8:FA:C9:F5:2F:CA:57:52:4D:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/98121BB470E711EFBEAD2871C4F9AE02.roa Signing time: Thu 12 Sep 2024 09:15:47 +0000 ROA not before: Thu 12 Sep 2024 09:15:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135068 IP address blocks: 103.227.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.crl rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFFA/serialNumber=F9F7E9B4CC31F395C5CDB8FAC9F52FCA57524DE1 Validity Not Before: Sep 12 09:15:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66e2b142-1cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ca:40:81:7a:bd:71:9c:1c:75:c8:b5:55:df: 17:d7:33:f1:03:57:91:5d:f0:ff:97:0b:97:fa:ec: 14:ac:3f:a5:de:79:4f:24:8a:a7:ce:54:c2:f4:cd: f1:7f:08:1e:18:58:d3:54:af:98:61:a0:41:99:66: d4:a8:93:59:9d:6c:6b:a9:db:88:b1:b0:91:09:3b: 1d:18:a5:3d:be:0a:b1:f3:19:f1:15:f7:4d:48:93: 72:7f:29:05:59:d2:40:ec:d8:9f:8b:14:7c:04:b8: f0:29:4e:0f:68:6a:06:36:01:37:55:42:3d:c1:d6: fa:9b:4e:4a:03:72:45:e3:89:0c:87:b0:b8:24:66: d5:59:d5:ae:dd:85:7c:69:2c:88:11:22:42:db:6d: 70:a7:89:8e:3f:01:1d:30:c7:90:e6:f3:ed:90:3d: 4d:eb:c9:bd:b9:61:ed:dc:54:97:01:37:c7:1a:70: 63:96:1c:e4:1a:70:85:23:15:24:c7:80:cb:e2:27: 0f:c8:e7:42:cc:7f:59:73:67:06:cb:6b:d0:b1:7d: 28:5a:58:3e:de:c0:9d:eb:96:f2:19:47:3e:4f:c8: 78:f1:ec:f1:04:77:74:42:76:36:2c:63:08:32:b9: a0:61:6e:c3:c1:96:59:67:37:7b:08:fa:02:e1:d7: 45:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:16:E5:4D:60:8D:93:B9:5B:58:36:B6:E0:CD:74:1E:8D:92:5F:EE X509v3 Authority Key Identifier: keyid:F9:F7:E9:B4:CC:31:F3:95:C5:CD:B8:FA:C9:F5:2F:CA:57:52:4D:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/98121BB470E711EFBEAD2871C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.208.0/24 Signature Algorithm: sha256WithRSAEncryption 34:da:ba:48:b1:ac:eb:35:83:c5:0a:dd:38:c9:0d:49:46:a7: 0b:a7:1d:91:5a:01:ae:84:42:73:93:87:cc:8a:e5:7d:9e:20: ec:08:46:36:2c:d3:19:06:1c:38:4b:f6:48:9c:5f:34:de:8a: 0d:aa:d1:5c:71:17:0c:a6:8e:88:39:a4:9a:50:0d:0e:4c:e0: 58:ab:d0:29:fe:27:6f:a7:4d:7a:76:ea:3a:18:36:47:77:fb: 07:f0:d9:ed:44:2e:ee:12:ed:d1:0c:47:7a:c5:b0:44:69:b6: 2c:7f:13:12:0d:5d:84:b0:6a:44:55:17:6f:fe:6d:af:be:1f: a0:84:ac:1f:75:31:69:ba:c5:fb:b1:b3:14:1f:0c:75:75:b2: 93:be:98:e2:9f:a7:93:41:e6:f3:a1:3a:d2:16:7a:10:4d:24: 08:e3:de:6e:ca:e4:52:87:2e:fb:ae:99:e1:ba:14:80:60:60: 79:f0:89:16:f4:49:24:25:56:97:0d:73:2c:6b:0c:ac:bf:fc: 76:0b:95:ae:5d:4c:fc:bd:b9:db:b8:ec:5c:32:7b:c9:1e:5f: 0a:44:35:bf:a8:b0:41:a9:63:53:92:ab:b8:f0:b7:b2:7c:e5: 1f:99:17:a8:34:b9:ef:68:d4:c4:79:1e:5f:5e:26:6a:84:37: 98:4c:55:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGRkExMTAvBgNVBAUTKEY5RjdFOUI0Q0MzMUYzOTVDNUNEQjhGQUM5RjUyRkNB NTc1MjRERTEwHhcNMjQwOTEyMDkxNTQ3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUyYjE0Mi0xY2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cpAgXq9cZwcdci1Vd8X1zPxA1eRXfD/lwuX+uwUrD+l3nlPJIqnzlTC9M3x fwgeGFjTVK+YYaBBmWbUqJNZnWxrqduIsbCRCTsdGKU9vgqx8xnxFfdNSJNyfykF WdJA7NifixR8BLjwKU4PaGoGNgE3VUI9wdb6m05KA3JF44kMh7C4JGbVWdWu3YV8 aSyIESJC221wp4mOPwEdMMeQ5vPtkD1N68m9uWHt3FSXATfHGnBjlhzkGnCFIxUk x4DL4icPyOdCzH9Zc2cGy2vQsX0oWlg+3sCd65byGUc+T8h48ezxBHd0QnY2LGMI MrmgYW7DwZZZZzd7CPoC4ddFJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLkW5U1g jZO5W1g2tuDNdB6Nkl/uMB8GA1UdIwQYMBaAFPn36bTMMfOVxc24+sn1L8pXUk3h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZGQS9DRTgxQTUxNDAz MkMxMUVEQThDQjQwNkVDNEY5QUUwMi8tZmZwdE13eDg1WEZ6Ymo2eWZVdnlsZFNU ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1mZnB0TXd4ODVYRnpiajZ5ZlV2eWxkU1RlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGRkEvQ0U4MUE1MTQwMzJDMTFFREE4Q0I0MDZFQzRGOUFFMDIvOTgxMjFCQjQ3 MEU3MTFFRkJFQUQyODcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn49AwDQYJKoZIhvcNAQELBQADggEBADTaukixrOs1g8UK 3TjJDUlGpwunHZFaAa6EQnOTh8yK5X2eIOwIRjYs0xkGHDhL9kicXzTeig2q0Vxx Fwymjog5pJpQDQ5M4Fir0Cn+J2+nTXp26joYNkd3+wfw2e1ELu4S7dEMR3rFsERp tix/ExINXYSwakRVF2/+ba++H6CErB91MWm6xfuxsxQfDHV1spO+mOKfp5NB5vOh OtIWehBNJAjj3m7K5FKHLvuumeG6FIBgYHnwiRb0SSQlVpcNcyxrDKy//HYLla5d TPy9udu47Fwye8keXwpENb+osEGpY1OSq7jwt7J85R+ZF6g0ue9o1MR5Hl9eJmqE N5hMVbQ= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:52 2024 by rpki-client on console-fra.rpki-client.org